Hackers, possibly from abroad, executed a targeted attack on a Northwest rail company’s computers that disrupted railway signals for two days in December, according to a government memo recapping outreach with the transportation sector during the emergency.
On Dec. 1, train service on the unnamed railroad “was slowed for a short while” and rail schedules were delayed about 15 minutes after the interference, stated a Transportation Security Administration summary of a Dec. 20 meeting about the episode obtained by Nextgov. The following day, shortly before rush hour, a “second event occurred” that did not affect schedules, TSA officials added. The agency is responsible for protecting all U.S. transportation systems, not just airports.
“Amtrak and the freight rails needed to have context regarding their information technical centers,” the memo stated. “Cyberattacks were not a major concern to most rail operators” at the time, adding, “the conclusion that rail was affect [sic] by a cyberattack is very serious.”
via Nextgov, continued here.